summaryrefslogtreecommitdiff
path: root/etc/sysctl.d
diff options
context:
space:
mode:
authorXiao Pan <gky44px1999@gmail.com>2023-12-01 02:51:17 +0000
committerXiao Pan <gky44px1999@gmail.com>2023-12-01 02:51:17 +0000
commitae0bebd28efa588a3f2a8471b9ae4020679e039e (patch)
treed30c2042a5a1c0f150771cd296eb451e46f487ad /etc/sysctl.d
parentb74716ec0c46a9fea3c9760947bd3ff6cde92202 (diff)
sysctl need net.ipv4.ip_forward=1 for wireguard masquerade? to work
Diffstat (limited to 'etc/sysctl.d')
-rw-r--r--etc/sysctl.d/99-sysctl.conf6
1 files changed, 6 insertions, 0 deletions
diff --git a/etc/sysctl.d/99-sysctl.conf b/etc/sysctl.d/99-sysctl.conf
new file mode 100644
index 00000000..0f8abbfd
--- /dev/null
+++ b/etc/sysctl.d/99-sysctl.conf
@@ -0,0 +1,6 @@
+# at least `net.ipv4.ip_forward = 1` is needed for wireguard masquerade? to work
+# ka seems has this as default, maybe arch linux cloud-init image has this as default?
+# https://forums.rockylinux.org/t/wireguard-masquerade-wont-work/7752
+# https://wiki.archlinux.org/title/Nftables#NAT_with_port_forwarding
+net.ipv4.ip_forward = 1
+net.ipv6.conf.all.forwarding = 1
generated by cgit v1.2.3-70-g09d2 (git 2.49.0) at 2025-04-09 07:35:49 +0000